Daily NCSC-FI news followup 2020-02-25

Mobile malware evolution 2019


Ransomware Against the Machine: How Adversaries are Learning to Disrupt Industrial Production by Targeting IT and OT


Firefox enables DNS-over-HTTPS by default (with Cloudflare) for all U.S. users


Install Latest Chrome Update to Patch 0-Day Bug Under Active Attacks


New OpenSMTPD RCE Flaw Affects Linux and OpenBSD Email Servers


Why Minimizing Human Error is the Only Viable Defense Against Spear Phishing


Quick look at a couple of current online scam campaigns


Firefox for Mac and Linux to get a new security sandbox system

www.zdnet.com/article/firefox-for-mac-and-linux-to-get-a-new-security-sandbox-system/ RLBox is an innovative project because it takes sandboxing to the next level. Instead of isolating the app from the underlying operating system, RLBox separates an app’s internal components — namely its third-party libraries — from the app’s core engine.

RSAC 2020 Keynote: Changing the Worlds False Perception of Cybersecurity

threatpost.com/rsac-2020-keynote-changing-the-worlds-false-perception-of-cybersecurity/153203/ We are only as good as the story we leave behind, he said. The story we want is a business story of cyber resilience, not a technical story of cyber ping pong.. The struggle that we often see in these types of stories engenders pity and fear, but its not one of the defender, but one of the protected.

Sen. Schumer Pushes for TSA Employee Ban on TikTok App at Work

threatpost.com/sen-schumer-pushes-for-tsa-employee-ban-on-tiktok-app-at-work/153192/ The Department of Homeland Security and two U.S. military branches already had discontinued use of the app based on concerns over Chinese data-security and censorship practices.

Microsoft previews Microsoft Defender ATP for Linux


UK financial watchdog admits to leaking confidential consumer data

www.zdnet.com/article/uk-financial-watchdog-admits-to-leaking-confidential-consumer-data/#ftag=RSSbaffb68 A Freedom of Information Act request published on the FCA website revealed more than it should.

ASIO: Relentless advance of technology was outstripping our capabilities

www.zdnet.com/article/asio-relentless-advance-of-technology-was-outstripping-our-capabilities/ Australian Security Intelligence Organisation (ASIO) Director-General of Security Mike Burgess has praised the introduction of new powers such as those contained within Australia’s encryption legislation to help the spy agency combat the new battleground that technology has created.

Australian banks targeted by DDoS extortionists

www.zdnet.com/article/australian-banks-targeted-by-ddos-extortionists/ Hackers are sending emails to banks asking for large payments in Monero, and threatening DDoS attacks if their demands aren’t met.

North Korea Is Recycling Mac Malware. That’s Not the Worst Part

www.wired.com/story/malware-reuse-north-korea-lazarus-group/ Lazarus Group hackers have long plagued the internetusing at least one tool they picked up just by looking around online.

Password killer FIDO2 comes bounding into Azure Active Directory hybrid environments


New Mozart Malware Gets Commands, Hides Traffic Using DNS


PayPal Users Hit With Fraudulent ‘Target’ Charges via Google Pay

www.bleepingcomputer.com/news/security/paypal-users-hit-with-fraudulent-target-charges-via-google-pay/ Hackers are using an unknown method to make fraudulent charges on PayPal accounts linked via GooglePay. These transactions are being charged through Target stores or Starbucks in the United States even though the account holders are in Germany.

DoppelPaymer Ransomware Launches Site to Post Victim’s Data

www.bleepingcomputer.com/news/security/doppelpaymer-ransomware-launches-site-to-post-victims-data/ The operators of the DoppelPaymer Ransomware have launched a site that they will use to shame victims who do not pay a ransom and to publish any files that were stolen before computers were encrypted.

Credit Card Skimmer Running on 13 Sites, Despite Notification

www.bleepingcomputer.com/news/security/credit-card-skimmer-running-on-13-sites-despite-notification/ The tally of shopping websites infected by MageCart Group 12 with JavaScript that steals payment card info is seeing a sharp increase. Nearly 40 new victims have been discovered.

You might be interested in …

Daily NCSC-FI news followup 2020-04-13

How to protect yourself from cyberattacks that exploit Covid-19 www.pandasecurity.com/mediacenter/business/cyberattacks-exploit-covid-19/ The current coronavirus COVID-19 pandemic is changing the business landscape. The most immediate change that has been seen in many countries is the sudden increase in the amount of people working from home. Because of this change, the attack surface has increased significantly, forcing companies […]

Read More

Daily NCSC-FI news followup 2020-04-21

FBI warns of COVID-19 phishing targeting US health providers www.bleepingcomputer.com/news/security/fbi-warns-of-covid-19-phishing-targeting-us-health-providers/ The U.S. Federal Bureau of Investigation (FBI) today warned of ongoing phishing campaigns targeting US healthcare providers using COVID-19 themed lures to distribute malicious attachments. 2, 000 coronavirus scammers taken offline in major phishing crackdown www.zdnet.com/article/2000-coronavirus-scammers-taken-offline-in-major-phishing-crackdown/ And now cybersecurity authorities want your help with spotting […]

Read More

Daily NCSC-FI news followup 2020-12-04

KUTSU TRAFICOMIN KYBERTURVALLISUUSKESKUKSEN MEDIAWEBINAARIIN: ONKO KODIN ÄLYLAITE AVOIN OVI HAKKERILLE? www.epressi.com/tiedotteet/teknologia/kutsu-traficomin-kyberturvallisuuskeskuksen-mediawebinaariin-onko-kodin-alylaite-avoin-ovi-hakkerille.html Verkossa olevat älylaitteet voivat olla kanava koteihin suuntautuviin tietoturvahyökkäyksiin. Siksi tuotteiden valmistajien ja markkinoijien täytyy varmistaa laitteidensa tietoturvataso. Miten vuosi sitten Liikenne- ja viestintävirasto Traficomin julkistama Tietoturvamerkki on otettu vastaan yrityksissä? Miten se auttaa kuluttajia löytämään tietoturvallisen älylaitteen?. Ilmoittaudu mediawebinaariimme viimeistään ti 8.12. klo […]

Read More

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.